Hi Guys,
Whilst trying to set up direct certificate authentication with two servers out on the edge of our network in a workgroup directly with a MS server I found I was having issues with the momcertimport.exe tool. I could see the Operations Manager container in the certificates snapin getting created but nothing in the reg key:
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft Operations Manager\3.0\Machine Settings]
"ChannelCertificateSerialNumber"
What I found was the tool was writing to Wow6432Node hive (the 32 bit part of the registry). This is where it creates the reverse mask of the serial of the certificate that the health service uses. So I exported the key, changed the path and re-imported.
Now the machines are communicating as expected. It had me stumped for a little while!